aboutsummaryrefslogtreecommitdiff
path: root/java_src/src/test
diff options
context:
space:
mode:
authorioannanedelcu <ioannanedelcu@google.com>2023-07-19 07:50:47 -0700
committerCopybara-Service <copybara-worker@google.com>2023-07-19 07:52:28 -0700
commit7ac3ceb9334b94bc8d327bd35f9b2c673211494e (patch)
treedd551b8efed6972e8ae92b396eacac4b08e7c6a9 /java_src/src/test
parent8db6a113331f062006e9a03d8561e3105753277b (diff)
downloadtink-7ac3ceb9334b94bc8d327bd35f9b2c673211494e.tar.gz
Add JwtRsaSsaPkcs1Parameters class in Java.
PiperOrigin-RevId: 549314771
Diffstat (limited to 'java_src/src/test')
-rw-r--r--java_src/src/test/java/com/google/crypto/tink/jwt/BUILD.bazel11
-rw-r--r--java_src/src/test/java/com/google/crypto/tink/jwt/JwtRsaSsaPkcs1ParametersTest.java315
2 files changed, 326 insertions, 0 deletions
diff --git a/java_src/src/test/java/com/google/crypto/tink/jwt/BUILD.bazel b/java_src/src/test/java/com/google/crypto/tink/jwt/BUILD.bazel
index b9176b827..6371ee03d 100644
--- a/java_src/src/test/java/com/google/crypto/tink/jwt/BUILD.bazel
+++ b/java_src/src/test/java/com/google/crypto/tink/jwt/BUILD.bazel
@@ -499,3 +499,14 @@ java_test(
"@maven//:junit_junit",
],
)
+
+java_test(
+ name = "JwtRsaSsaPkcs1ParametersTest",
+ size = "small",
+ srcs = ["JwtRsaSsaPkcs1ParametersTest.java"],
+ deps = [
+ "//src/main/java/com/google/crypto/tink/jwt:jwt_rsa_ssa_pkcs1_parameters",
+ "@maven//:com_google_truth_truth",
+ "@maven//:junit_junit",
+ ],
+)
diff --git a/java_src/src/test/java/com/google/crypto/tink/jwt/JwtRsaSsaPkcs1ParametersTest.java b/java_src/src/test/java/com/google/crypto/tink/jwt/JwtRsaSsaPkcs1ParametersTest.java
new file mode 100644
index 000000000..8e0efbe2d
--- /dev/null
+++ b/java_src/src/test/java/com/google/crypto/tink/jwt/JwtRsaSsaPkcs1ParametersTest.java
@@ -0,0 +1,315 @@
+// Copyright 2023 Google LLC
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+//
+////////////////////////////////////////////////////////////////////////////////
+
+package com.google.crypto.tink.jwt;
+
+import static com.google.common.truth.Truth.assertThat;
+import static org.junit.Assert.assertThrows;
+
+import java.math.BigInteger;
+import java.security.GeneralSecurityException;
+import org.junit.Test;
+import org.junit.experimental.theories.DataPoints;
+import org.junit.experimental.theories.FromDataPoints;
+import org.junit.experimental.theories.Theories;
+import org.junit.experimental.theories.Theory;
+import org.junit.runner.RunWith;
+
+@RunWith(Theories.class)
+public final class JwtRsaSsaPkcs1ParametersTest {
+
+ @DataPoints("algorithms")
+ public static final JwtRsaSsaPkcs1Parameters.Algorithm[] ALGORITHMS =
+ new JwtRsaSsaPkcs1Parameters.Algorithm[] {
+ JwtRsaSsaPkcs1Parameters.Algorithm.RS256,
+ JwtRsaSsaPkcs1Parameters.Algorithm.RS384,
+ JwtRsaSsaPkcs1Parameters.Algorithm.RS512
+ };
+
+ @Theory
+ public void buildParametersAndGetProperties_hasExpectedValues(
+ @FromDataPoints("algorithms") JwtRsaSsaPkcs1Parameters.Algorithm algorithm) throws Exception {
+ JwtRsaSsaPkcs1Parameters parameters =
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2048)
+ .setPublicExponent(JwtRsaSsaPkcs1Parameters.F4)
+ .setAlgorithm(algorithm)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.IGNORED)
+ .build();
+ assertThat(parameters.getModulusSizeBits()).isEqualTo(2048);
+ assertThat(parameters.getPublicExponent()).isEqualTo(JwtRsaSsaPkcs1Parameters.F4);
+ assertThat(parameters.getKidStrategy()).isEqualTo(JwtRsaSsaPkcs1Parameters.KidStrategy.IGNORED);
+ assertThat(parameters.getAlgorithm()).isEqualTo(algorithm);
+ assertThat(parameters.hasIdRequirement()).isFalse();
+ assertThat(parameters.allowKidAbsent()).isTrue();
+ }
+
+ @Test
+ public void buildParameters_kidCustom_succeds() throws Exception {
+ JwtRsaSsaPkcs1Parameters parameters =
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2048)
+ .setPublicExponent(JwtRsaSsaPkcs1Parameters.F4)
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS256)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.CUSTOM)
+ .build();
+ assertThat(parameters.getKidStrategy()).isEqualTo(JwtRsaSsaPkcs1Parameters.KidStrategy.CUSTOM);
+ assertThat(parameters.hasIdRequirement()).isFalse();
+ assertThat(parameters.allowKidAbsent()).isTrue();
+ }
+
+ @Test
+ public void buildParameters_kidBase64_succeds() throws Exception {
+ JwtRsaSsaPkcs1Parameters parameters =
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2048)
+ .setPublicExponent(JwtRsaSsaPkcs1Parameters.F4)
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS256)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.BASE64_ENCODED_KEY_ID)
+ .build();
+ assertThat(parameters.getKidStrategy())
+ .isEqualTo(JwtRsaSsaPkcs1Parameters.KidStrategy.BASE64_ENCODED_KEY_ID);
+ assertThat(parameters.hasIdRequirement()).isTrue();
+ assertThat(parameters.allowKidAbsent()).isFalse();
+ }
+
+ @Test
+ public void buildParameters_withoutExponent_isF4() throws Exception {
+ JwtRsaSsaPkcs1Parameters parameters =
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2048)
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS256)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.IGNORED)
+ .build();
+ assertThat(parameters.getPublicExponent()).isEqualTo(JwtRsaSsaPkcs1Parameters.F4);
+ }
+
+ @Test
+ public void buildParameters_withLargeModulusSize_succeds() throws Exception {
+ JwtRsaSsaPkcs1Parameters parameters =
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(16789)
+ .setPublicExponent(JwtRsaSsaPkcs1Parameters.F4)
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS256)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.IGNORED)
+ .build();
+ assertThat(parameters.getModulusSizeBits()).isEqualTo(16789);
+ }
+
+ @Test
+ public void buildParameters_withTooSmallModulusSize_fails() throws Exception {
+ assertThrows(
+ GeneralSecurityException.class,
+ () ->
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2047)
+ .setPublicExponent(JwtRsaSsaPkcs1Parameters.F4)
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS256)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.IGNORED)
+ .build());
+ }
+
+ @Test
+ public void buildParameters_withValidNonF4PublicExponent_succeds() throws Exception {
+ JwtRsaSsaPkcs1Parameters parameters =
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2048)
+ .setPublicExponent(BigInteger.valueOf(1234567))
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS512)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.CUSTOM)
+ .build();
+ assertThat(parameters.getPublicExponent()).isEqualTo(BigInteger.valueOf(1234567));
+ }
+
+ @Test
+ public void buildParameters_withSmallPublicExponent_fails() throws Exception {
+ assertThrows(
+ GeneralSecurityException.class,
+ () ->
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2048)
+ .setPublicExponent(BigInteger.valueOf(3))
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS256)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.IGNORED)
+ .build());
+ }
+
+ @Test
+ public void buildParameters_withEvenPublicExponent_fails() throws Exception {
+ assertThrows(
+ GeneralSecurityException.class,
+ () ->
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2048)
+ .setPublicExponent(BigInteger.valueOf(1234568))
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS256)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.IGNORED)
+ .build());
+ }
+
+ // Public exponents larger than 2^256 are rejected. See:
+ // https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-4.pdf, B.3
+ @Test
+ public void buildParameters_withTooLargePublicExponent_fails() throws Exception {
+ BigInteger tooLargeE = BigInteger.valueOf(2).pow(256).add(BigInteger.ONE);
+ assertThat(tooLargeE.bitLength()).isEqualTo(257);
+ assertThrows(
+ GeneralSecurityException.class,
+ () ->
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2048)
+ .setPublicExponent(tooLargeE)
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS256)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.IGNORED)
+ .build());
+ }
+
+ @Test
+ public void buildParameters_withoutSettingModulusSize_fails() throws Exception {
+ assertThrows(
+ GeneralSecurityException.class,
+ () ->
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setPublicExponent(JwtRsaSsaPkcs1Parameters.F4)
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS256)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.IGNORED)
+ .build());
+ }
+
+ @Test
+ public void buildParameters_withoutSettingAlgorithm_fails() throws Exception {
+ assertThrows(
+ GeneralSecurityException.class,
+ () ->
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2048)
+ .setPublicExponent(JwtRsaSsaPkcs1Parameters.F4)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.IGNORED)
+ .build());
+ }
+
+ @Test
+ public void buildParameters_withoutSettingKidStrategy_fails() throws Exception {
+ assertThrows(
+ GeneralSecurityException.class,
+ () ->
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2048)
+ .setPublicExponent(JwtRsaSsaPkcs1Parameters.F4)
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS256)
+ .build());
+ }
+
+ @Test
+ public void testEqualsAndEqualsHashCode_succeds() throws Exception {
+ JwtRsaSsaPkcs1Parameters parameters1 =
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2048)
+ .setPublicExponent(JwtRsaSsaPkcs1Parameters.F4)
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS256)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.IGNORED)
+ .build();
+ JwtRsaSsaPkcs1Parameters parameters2 =
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2048)
+ .setPublicExponent(JwtRsaSsaPkcs1Parameters.F4)
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS256)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.IGNORED)
+ .build();
+ assertThat(parameters1).isEqualTo(parameters2);
+ assertThat(parameters1.hashCode()).isEqualTo(parameters2.hashCode());
+ }
+
+ @Test
+ public void testEqualsHashCode_dependsOnModulusSize() throws Exception {
+ JwtRsaSsaPkcs1Parameters parameters1 =
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2048)
+ .setPublicExponent(JwtRsaSsaPkcs1Parameters.F4)
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS256)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.IGNORED)
+ .build();
+ JwtRsaSsaPkcs1Parameters parameters2 =
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2049)
+ .setPublicExponent(JwtRsaSsaPkcs1Parameters.F4)
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS256)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.IGNORED)
+ .build();
+ assertThat(parameters1).isNotEqualTo(parameters2);
+ assertThat(parameters1.hashCode()).isNotEqualTo(parameters2.hashCode());
+ }
+
+ @Test
+ public void testEqualsHashCode_dependsOnPublicExponent() throws Exception {
+ JwtRsaSsaPkcs1Parameters parameters1 =
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2048)
+ .setPublicExponent(JwtRsaSsaPkcs1Parameters.F4)
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS256)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.IGNORED)
+ .build();
+ JwtRsaSsaPkcs1Parameters parameters2 =
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2048)
+ .setPublicExponent(BigInteger.valueOf(65539))
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS256)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.IGNORED)
+ .build();
+ assertThat(parameters1).isNotEqualTo(parameters2);
+ assertThat(parameters1.hashCode()).isNotEqualTo(parameters2.hashCode());
+ }
+
+ @Test
+ public void testEqualsHashCode_dependsOnAlgorithm() throws Exception {
+ JwtRsaSsaPkcs1Parameters parameters1 =
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2048)
+ .setPublicExponent(JwtRsaSsaPkcs1Parameters.F4)
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS256)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.IGNORED)
+ .build();
+ JwtRsaSsaPkcs1Parameters parameters2 =
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2048)
+ .setPublicExponent(JwtRsaSsaPkcs1Parameters.F4)
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS384)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.IGNORED)
+ .build();
+ assertThat(parameters1).isNotEqualTo(parameters2);
+ assertThat(parameters1.hashCode()).isNotEqualTo(parameters2.hashCode());
+ }
+
+ @Test
+ public void testEqualsHashCode_dependsOnKidStrategy() throws Exception {
+ JwtRsaSsaPkcs1Parameters parameters1 =
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2048)
+ .setPublicExponent(JwtRsaSsaPkcs1Parameters.F4)
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS256)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.IGNORED)
+ .build();
+ JwtRsaSsaPkcs1Parameters parameters2 =
+ JwtRsaSsaPkcs1Parameters.builder()
+ .setModulusSizeBits(2048)
+ .setPublicExponent(JwtRsaSsaPkcs1Parameters.F4)
+ .setAlgorithm(JwtRsaSsaPkcs1Parameters.Algorithm.RS256)
+ .setKidStrategy(JwtRsaSsaPkcs1Parameters.KidStrategy.CUSTOM)
+ .build();
+ assertThat(parameters1).isNotEqualTo(parameters2);
+ assertThat(parameters1.hashCode()).isNotEqualTo(parameters2.hashCode());
+ }
+}
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-11 04:11:45 +0000